FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

chromium -- multiple vulnerabilities

Affected packages
chromium < 23.0.1271.97

Details

VuXML ID 51f84e28-444e-11e2-8306-00262d5ed8ee
Discovery 2012-12-11
Entry 2012-12-12

Google Chrome Releases reports:

[158204] High CVE-2012-5139: Use-after-free with visibility events. Credit to Chamal de Silva.

[159429] High CVE-2012-5140: Use-after-free in URL loader. Credit to Chamal de Silva.

[160456] Medium CVE-2012-5141: Limit Chromoting client plug-in instantiation. Credit to Google Chrome Security Team (Jüri Aedla).

[160803] Critical CVE-2012-5142: Crash in history navigation. Credit to Michal Zalewski of Google Security Team.

[160926] Medium CVE-2012-5143: Integer overflow in PPAPI image buffers. Credit to Google Chrome Security Team (Cris Neckar).

[161639] High CVE-2012-5144: Stack corruption in AAC decoding. Credit to pawlkt.

References

CVE Name CVE-2012-5139
CVE Name CVE-2012-5140
CVE Name CVE-2012-5141
CVE Name CVE-2012-5142
CVE Name CVE-2012-5143
CVE Name CVE-2012-5144
URL http://googlechromereleases.blogspot.nl/search/label/Stable%20updates